Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231891 7.5 危険 speedbit - SpeedBit DAP における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3433 2012-12-20 18:52 2008-08-1 Show GitHub Exploit DB Packet Storm
231892 5 警告 Vtiger - Vtiger CRM におけるメールマージテンプレートを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-3458 2012-12-20 18:52 2006-09-9 Show GitHub Exploit DB Packet Storm
231893 7.2 危険 サン・マイクロシステムズ - IOCTL 用の METHOD_NEITHER 通信メソッドで使用されている Sun xVM VirtualBox における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3431 2012-12-20 18:52 2008-08-5 Show GitHub Exploit DB Packet Storm
231894 6.5 警告 PhpFreeChat - phpFreeChat におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2008-3428 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231895 6.5 警告 サン・マイクロシステムズ - Sun N1 SPS の Sun Java System Web Server プラグインにおける Web サーバへの管理アクセス権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-3425 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
231896 7.5 危険 willo - Mobius for Mimsy XG における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3420 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231897 7.5 危険 willo - TriO の browse.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3418 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231898 7.5 危険 siteadmin - SiteAdmin の line2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3414 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231899 5 警告 phplinkat - phpLinkat における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-3407 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
231900 7.5 危険 phplinkat - TribunaLibre の ftag.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3406 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199941 4.5 MEDIUM
Adjacent 		konicaminolta bizhub_c750i_firmware
bizhub_c650i_firmware
bizhub_c550i_firmware
bizhub_c450i_firmware
bizhub_c360i_firmware
bizhub_c300i_firmware
bizhub_c250i_firmware
bizhub_750i_firmware
 Incorrect authorization vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhu… CWE-863
 Incorrect Authorization 		CVE-2021-20868 2024-11-21 14:47 2022-01-4 Show GitHub Exploit DB Packet Storm
199942 8.1 HIGH
Network 		yappli yappli Yappli is an application development platform which provides the function to access a requested URL using Custom URL Scheme. When Android apps are developed with Yappli versions since v7.3.6 and prio… CWE-862
 Missing Authorization 		CVE-2021-20873 2024-11-21 14:47 2021-12-28 Show GitHub Exploit DB Packet Storm
199943 6.8 MEDIUM
Network 		groupsession groupsession Path traversal vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows an attacker with an admini… CWE-22
Path Traversal 		CVE-2021-20876 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199944 6.1 MEDIUM
Network 		groupsession groupsession Open redirect vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated at… CWE-601
Open Redirect 		CVE-2021-20875 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199945 7.5 HIGH
Network 		groupsession groupsession Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and ea… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-20874 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199946 7.5 HIGH
Network 		idec microsmart_fc6a_firmware
microsmart_plus_fc6a_firmware
data_file_manager
windedit
windldr 		Plaintext storage of a password vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 a… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-20827 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199947 7.6 HIGH
Adjacent 		idec microsmart_fc6a_firmware
microsmart_plus_fc6a_firmware
data_file_manager
windedit
windldr 		Unprotected transport of credentials vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.1… CWE-522
 Insufficiently Protected Credentials 		CVE-2021-20826 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199948 6.5 MEDIUM
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in moving the field group which may allow a user to m… CWE-862
 Missing Authorization 		CVE-2021-20867 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm
199949 6.5 MEDIUM
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in obtaining the user list which may allow a user to … CWE-862
 Missing Authorization 		CVE-2021-20866 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm
199950 7.5 HIGH
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in browsing database which may allow a user to browse… CWE-862
 Missing Authorization 		CVE-2021-20865 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm